Jan 3, 2019Adding Cache-Control headers for static assets in VercelUpdate, 3/11/23: Vercel caches static assets automatically for you at their Edge CDN. Static files are cached for up to 31 days. If a file is unchanged, it can persist across deployments, as their hash caches static files. …JavaScript2 min readJavaScript2 min read
Dec 11, 2018Figure out who’s sharing your personal email with 3rd parties.Update, 3/11/22: I don’t do this anymore. I think it’s clever on paper, but in practice it was actually quite a pain and even 5 years later I can confirm the below conclusions haven’t changed! I can’t begin to count the number of times I had to explain my email…Email2 min readEmail2 min read
Dec 1, 2018The `event-stream` vulnerabilityThe event-stream package had a major vulnerability. The malicious code was actually found in version 0.1.1 of flatmap-stream, but event-stream was the true source of the issue as it’s a popular package and introduced flatmap-stream in version 3.3.6 as part of the hack. In a number of my projects it…JavaScript2 min readJavaScript2 min read
